Avi Kivity wrote: > Dimitry Golubovsky wrote: > >> Am I missing anything else root privileges might be needed for? >> > > I think you got it covered. >
One thing to consider is that if a userspace process can create KVM guests, they are capable of pinning large quantities of physical memory. This could be used as a DoS attack so consider VM creation a privileged operation. Regards, Anthony Liguori ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ kvm-devel mailing list kvm-devel@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/kvm-devel